CVE-2024-23370

Memory corruption when a process invokes IOCTL calls from user-space to create a HAB virtual channel and another process invokes IOCTL calls to destroy the same.
Configurations

Configuration 1 (hide)

AND
cpe:2.3:o:qualcomm:wsa8835_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:qualcomm:wsa8835:-:*:*:*:*:*:*:*

Configuration 2 (hide)

AND
cpe:2.3:o:qualcomm:wsa8830_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:qualcomm:wsa8830:-:*:*:*:*:*:*:*

Configuration 3 (hide)

AND
cpe:2.3:o:qualcomm:wcn3988_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:qualcomm:wcn3988:-:*:*:*:*:*:*:*

Configuration 4 (hide)

AND
cpe:2.3:o:qualcomm:wcn3980_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:qualcomm:wcn3980:-:*:*:*:*:*:*:*

Configuration 5 (hide)

AND
cpe:2.3:o:qualcomm:sw5100p_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:qualcomm:sw5100p:-:*:*:*:*:*:*:*

Configuration 6 (hide)

AND
cpe:2.3:o:qualcomm:sw5100_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:qualcomm:sw5100:-:*:*:*:*:*:*:*

Configuration 7 (hide)

AND
cpe:2.3:o:qualcomm:snapdragon_auto_5g_modem-rf_gen_2_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:qualcomm:snapdragon_auto_5g_modem-rf_gen_2:-:*:*:*:*:*:*:*

Configuration 8 (hide)

AND
cpe:2.3:o:qualcomm:qca9377_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:qualcomm:qca9377:-:*:*:*:*:*:*:*

Configuration 9 (hide)

AND
cpe:2.3:o:qualcomm:qca9367_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:qualcomm:qca9367:-:*:*:*:*:*:*:*

Configuration 10 (hide)

AND
cpe:2.3:o:qualcomm:qca6698aq_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:qualcomm:qca6698aq:-:*:*:*:*:*:*:*

Configuration 11 (hide)

AND
cpe:2.3:o:qualcomm:qca6584au_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:qualcomm:qca6584au:-:*:*:*:*:*:*:*

History

16 Oct 2024, 20:27

Type Values Removed Values Added
First Time Qualcomm qca9367 Firmware
Qualcomm wsa8830
Qualcomm wcn3988 Firmware
Qualcomm qca9367
Qualcomm sw5100p
Qualcomm sw5100 Firmware
Qualcomm
Qualcomm wcn3980
Qualcomm qca9377
Qualcomm snapdragon Auto 5g Modem-rf Gen 2 Firmware
Qualcomm wsa8835
Qualcomm wcn3988
Qualcomm qca6698aq
Qualcomm snapdragon Auto 5g Modem-rf Gen 2
Qualcomm qca6698aq Firmware
Qualcomm sw5100
Qualcomm wsa8835 Firmware
Qualcomm qca9377 Firmware
Qualcomm wsa8830 Firmware
Qualcomm qca6584au Firmware
Qualcomm wcn3980 Firmware
Qualcomm qca6584au
Qualcomm sw5100p Firmware
Summary
  • (es) Corrupción de memoria cuando un proceso invoca llamadas IOCTL desde el espacio de usuario para crear un canal virtual HAB y otro proceso invoca llamadas IOCTL para destruirlo.
References () https://docs.qualcomm.com/product/publicresources/securitybulletin/october-2024-bulletin.html - () https://docs.qualcomm.com/product/publicresources/securitybulletin/october-2024-bulletin.html - Vendor Advisory
CPE cpe:2.3:o:qualcomm:wsa8830_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:qualcomm:qca9367:-:*:*:*:*:*:*:*
cpe:2.3:o:qualcomm:wcn3988_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:qualcomm:wsa8830:-:*:*:*:*:*:*:*
cpe:2.3:h:qualcomm:qca9377:-:*:*:*:*:*:*:*
cpe:2.3:h:qualcomm:qca6584au:-:*:*:*:*:*:*:*
cpe:2.3:h:qualcomm:wcn3988:-:*:*:*:*:*:*:*
cpe:2.3:o:qualcomm:snapdragon_auto_5g_modem-rf_gen_2_firmware:-:*:*:*:*:*:*:*
cpe:2.3:o:qualcomm:qca9377_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:qualcomm:sw5100:-:*:*:*:*:*:*:*
cpe:2.3:o:qualcomm:sw5100p_firmware:-:*:*:*:*:*:*:*
cpe:2.3:o:qualcomm:qca6584au_firmware:-:*:*:*:*:*:*:*
cpe:2.3:o:qualcomm:wcn3980_firmware:-:*:*:*:*:*:*:*
cpe:2.3:o:qualcomm:qca9367_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:qualcomm:wsa8835:-:*:*:*:*:*:*:*
cpe:2.3:h:qualcomm:qca6698aq:-:*:*:*:*:*:*:*
cpe:2.3:h:qualcomm:wcn3980:-:*:*:*:*:*:*:*
cpe:2.3:o:qualcomm:qca6698aq_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:qualcomm:snapdragon_auto_5g_modem-rf_gen_2:-:*:*:*:*:*:*:*
cpe:2.3:h:qualcomm:sw5100p:-:*:*:*:*:*:*:*
cpe:2.3:o:qualcomm:sw5100_firmware:-:*:*:*:*:*:*:*
cpe:2.3:o:qualcomm:wsa8835_firmware:-:*:*:*:*:*:*:*

07 Oct 2024, 13:15

Type Values Removed Values Added
New CVE

Information

Published : 2024-10-07 13:15

Updated : 2024-10-16 20:27


NVD link : CVE-2024-23370

Mitre link : CVE-2024-23370

CVE.ORG link : CVE-2024-23370


JSON object : View

Products Affected

qualcomm

  • qca9367_firmware
  • sw5100p_firmware
  • sw5100
  • qca6698aq
  • qca6584au_firmware
  • qca6698aq_firmware
  • wcn3988_firmware
  • sw5100p
  • wsa8835_firmware
  • wsa8830_firmware
  • qca6584au
  • qca9377
  • qca9377_firmware
  • wsa8830
  • snapdragon_auto_5g_modem-rf_gen_2
  • wcn3988
  • wcn3980
  • wsa8835
  • snapdragon_auto_5g_modem-rf_gen_2_firmware
  • qca9367
  • wcn3980_firmware
  • sw5100_firmware
CWE
CWE-416

Use After Free